$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: b8Lrbrqhf/NhGv6GI99fDxwJG5CET9wlsZPiD7d2pMY= Subject key identifier: 45:26:CF:78:87:16:F6:8A:77:73:55:CE:43:09:F6:98:80:04:69:69 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0B9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0B90 Signing time: Sat 18 May 2024 19:18:56 +0000 Manifest this update: Sat 18 May 2024 19:18:56 +0000 Manifest next update: Sat 25 May 2024 19:18:56 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: PPJ5JDYFqtjoFvopboGC/hnFHCin9vDoiWZYdW5OchY=) 2: 132926D68A0B11EE84250E7BC4F9AE02.roa (hash: CNREoAjSrhLH+9lhx2Q8ti5rW1LW37er1wAnAgRYwEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2971 (0xb9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: May 18 19:18:56 2024 GMT Not After : May 25 19:18:56 2024 GMT Subject: CN=6648ff20-b350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2f:73:a8:df:4c:30:5a:b4:3d:a0:fe:4f:76: 39:15:b3:24:fb:cc:f6:0c:3c:21:e9:fe:0f:7c:28: dc:a7:27:84:3e:6a:fc:9c:ac:83:3f:23:b1:a0:b4: 3e:e6:f3:39:63:ca:3b:f9:7b:32:c3:ae:92:c4:78: 0d:61:85:35:89:49:5d:5e:b7:04:52:c4:2f:52:78: 6c:ef:8e:88:88:0e:35:2a:d3:a1:11:21:54:f9:0a: 2c:1b:42:a5:02:78:7d:52:72:f2:d7:e1:29:80:aa: c4:b5:31:a5:ad:7a:19:34:89:5f:7b:3e:74:ce:90: 96:34:de:25:7c:f5:6f:4e:de:8a:a8:40:c7:53:8a: b5:fa:ec:d5:72:6c:12:f1:de:6e:71:7f:0d:f8:f2: d5:1b:45:0e:d4:30:68:ed:b0:1d:e9:3c:59:cd:00: 83:c6:e9:30:21:cd:4f:30:43:0d:9b:65:31:8f:a4: bc:fa:93:23:97:c7:d3:06:43:d7:f4:06:06:fa:9e: 5d:b0:e2:0a:a6:78:35:5c:9b:60:dc:8d:88:4a:fc: 0e:92:65:a4:8c:17:dc:35:63:e6:93:ae:fd:84:69: 4f:d8:09:85:f9:7f:17:de:6a:9f:1f:de:34:dc:4b: f6:c3:da:d5:3e:d9:f9:77:15:9c:bd:15:b0:29:47: 0c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:26:CF:78:87:16:F6:8A:77:73:55:CE:43:09:F6:98:80:04:69:69 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:72:ab:d3:76:4e:50:62:08:f6:e7:0c:b8:e1:fb:13:4b:94: 01:f6:ae:aa:6b:f8:5e:c1:d3:d0:2a:71:26:9d:79:9f:3c:b6: ee:b2:c8:78:cb:67:83:80:dd:98:b0:dc:ed:e2:17:75:61:c4: a6:7a:43:a1:2f:d4:e4:07:5c:79:c2:3e:e2:80:e8:3a:bf:cc: a3:7a:55:a7:dc:c8:7a:91:0f:d7:fa:08:2b:ef:95:93:ff:aa: 8f:5a:22:66:cd:f8:03:19:4f:97:92:f4:1e:5e:dc:f3:3a:4b: bd:25:e2:9f:6b:9f:85:df:a8:20:72:a5:46:e5:45:43:d7:8b: 87:a9:e4:36:56:8f:7b:0a:b2:b7:a9:bd:5c:93:f0:da:22:c8: 64:95:24:bd:b4:29:e0:9c:00:ee:4d:24:53:2c:da:e2:9b:55: f3:ba:6a:b6:bf:21:0b:42:83:a7:d3:0a:af:63:08:a7:be:a6: e9:78:f1:69:d3:cb:34:55:68:f5:dc:fb:48:5f:77:ab:9c:8e: 5f:f5:26:0e:31:e4:5f:1b:40:94:75:3f:0e:92:9d:5d:a0:89: 41:94:4e:ee:03:e8:90:68:17:ff:54:d0:89:60:b4:b1:35:18: 09:86:0c:a4:85:60:92:32:b9:85:8d:fb:c6:b7:86:50:cf:7c: f1:ae:96:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjQwNTE4MTkxODU2WhcNMjQwNTI1MTkxODU2WjAYMRYwFAYD VQQDEw02NjQ4ZmYyMC1iMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsS9zqN9MMFq0PaD+T3Y5FbMk+8z2DDwh6f4PfCjcpyeEPmr8nKyDPyOxoLQ+ 5vM5Y8o7+Xsyw66SxHgNYYU1iUldXrcEUsQvUnhs746IiA41KtOhESFU+QosG0Kl Anh9UnLy1+EpgKrEtTGlrXoZNIlfez50zpCWNN4lfPVvTt6KqEDHU4q1+uzVcmwS 8d5ucX8N+PLVG0UO1DBo7bAd6TxZzQCDxukwIc1PMEMNm2Uxj6S8+pMjl8fTBkPX 9AYG+p5dsOIKpng1XJtg3I2ISvwOkmWkjBfcNWPmk679hGlP2AmF+X8X3mqfH940 3Ev2w9rVPtn5dxWcvRWwKUcM8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUmz3iH FvaKd3NVzkMJ9piABGlpMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCicqvTdk5QYgj25wy44fsTS5QB9q6qa/hewdPQKnEmnXmfPLbussh4 y2eDgN2YsNzt4hd1YcSmekOhL9TkB1x5wj7igOg6v8yjelWn3Mh6kQ/X+ggr75WT /6qPWiJmzfgDGU+XkvQeXtzzOku9JeKfa5+F36ggcqVG5UVD14uHqeQ2Vo97CrK3 qb1ck/DaIshklSS9tCngnADuTSRTLNrim1Xzumq2vyELQoOn0wqvYwinvqbpePFp 08s0VWj13PtIX3ernI5f9SYOMeRfG0CUdT8Okp1doIlBlE7uA+iQaBf/VNCJYLSx NRgJhgykhWCSMrmFjfvGt4ZQz3zxrpYY -----END CERTIFICATE-----Generated at Sat May 18 20:16:06 2024 by rpki-client on console-ams.rpki-client.org